Skills
skills/shawnpang/startup-founder-skills/daily-product-digest/Gen Agent Trust Hub

daily-product-digest

Pass

Audited by Gen Agent Trust Hub on Mar 17, 2026

Risk Level: SAFENO_CODEPROMPT_INJECTION
Full Analysis
  • [NO_CODE]: The skill is composed exclusively of markdown instructions and metadata, with no executable Python, Node.js, or shell scripts included.
  • [PROMPT_INJECTION]: The skill defines a workflow for ingesting data from external, untrusted sources such as Product Hunt, Hacker News, and Reddit, creating a surface for indirect prompt injection.
  • Ingestion points: Third-party community platforms (Product Hunt, Hacker News, Indie Hackers, Reddit) specified in the 'Workflow' section of SKILL.md.
  • Boundary markers: Absent; there are no instructions to use delimiters or ignore instructions found within the scraped content.
  • Capability inventory: None; the skill does not include any scripts, subprocesses, or network-enabled code.
  • Sanitization: Absent; no validation or filtering steps for the external content are provided in the instructions.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 17, 2026, 04:39 PM